Re: [sipx-users] SIP digest auth and caller ID

Thu, 19 Aug 2010 14:47:48 -0700 

On 8/19/10 5:07 PM, Hearty, John wrote:



I was assisting in troubleshooting problems doing SIP Trunking to 
sipXecs.  When accessing the service over public internet, we require 
digest authentication.  When a User name for SIP authentication is 
configured and the "Use default asserted identity" box is checked, the 
value in the "User name" field gets put into the user part of the From 
URI and P-Asserted-Identity URI.  This looks wrong.  The "User name" 
field appears to be overloaded, being used for both SIP credentials 
and subscriber identification.  Authentication credentials have 
nothing to do with subscriber identity.  The value in the "User name" 
field should only be used in the Authorization header.  It is 
completely unrelated to the identity of the caller.  Is this a bug 
being tracked?



Below is text from the 
http://wiki.sipfoundry.org/display/xecsuserV4r2/SIP+Trunking page that 
supports what was observed.



If the ITSP does not recognize this field and uses the From header for 
account identification, these features may not work as expected. if 
you select to "use default asserted identity", you must specify a user 
name so that the default /Asserted Identity/ may be computed.




and as clarification, I think this is version 4.2.0 sipx.

from a 'sipx' itsp account setup, we have the account number and 
password in the itsp account fields, the 'register on init' CLEARED.
The issues come in when a remote call come in, and is forwarded.  the 
callid that shows up on the phone that the call was forwarded to is the 
level3 'user'.



--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
ISN: 1259*1300
> *| *SECNAP Network Security Corporation

   * Certified SNORT Integrator
   * 2008-9 Hot Company Award Winner, World Executive Alliance
   * Five-Star Partner Program 2009, VARBusiness
   * Best in Email Security,2010: Network Products Guide
   * King of Spam Filters, SC Magazine 2008


______________________________________________________________________

This email has been scanned and certified safe by SpammerTrap(r). 
For Information please see http://www.secnap.com/products/spammertrap/

______________________________________________________________________  
_______________________________________________
sipx-users mailing list
[email protected]
List Archive: http://list.sipfoundry.org/archive/sipx-users/





















					Reply via email to